#!/bin/bash

#=================================================
# GENERIC START
#=================================================
# IMPORT GENERIC HELPERS
#=================================================

source ../settings/scripts/_common.sh
source /usr/share/yunohost/helpers

#=================================================
# MANAGE SCRIPT FAILURE
#=================================================

# Exit if an error occurs during the execution of the script
ynh_abort_if_errors

#=================================================
# LOAD SETTINGS
#=================================================

app=$YNH_APP_INSTANCE_NAME

export ssh_user=$(ynh_app_setting_get $app ssh_user)
export public_key=$(ynh_app_setting_get $app public_key)
export quota=$(ynh_app_setting_get $app quota)
export datadir=$(ynh_app_setting_get $app datadir)

#=================================================
# INSTALL DEPENDENCIES
#=================================================
ynh_script_progression --message="Reinstalling dependencies..."

ynh_install_app_dependencies $pkg_dependencies
install_borg_with_pip

#=================================================
# CREATE SSH USER USED BY BORG
#=================================================
ynh_script_progression --message="Creating SSH user used by Borg..."

ynh_system_user_create --username=$ssh_user --home_dir=/home/$ssh_user --use_shell --groups ssh.app

#=================================================
# AUTORIZE SSH FOR THIS USER
#=================================================

mkdir -p $datadir/.ssh
chmod o=--- $datadir
chown -R $ssh_user:$ssh_user $datadir
touch $datadir/.ssh/authorized_keys
extra="--storage-quota $quota"
if [ "$quota" = "" ]; then
    extra=""
fi
echo "command=\"borg serve $extra --restrict-to-repository $datadir/backup\",no-pty,no-agent-forwarding,no-port-forwarding,no-X11-forwarding,no-user-rc $public_key" >> $datadir/.ssh/authorized_keys

#=================================================
# AVOID BACKUP OF BACKUP
#=================================================

touch $datadir/.nobackup
ynh_restore

#=================================================
# END OF SCRIPT
#=================================================

ynh_script_progression --message="Restoration completed for $app" --last